Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/rSVQG9IvJm7MkXjOatE-OUd4XLw.roa
File: rSVQG9IvJm7MkXjOatE-OUd4XLw.roa (raw, json)
Hash identifier: 6TMUKjAs5ClSPqpu32PKTp4qrBwQfJxu5xas7soNR/M=
Subject key identifier: AD:25:50:1B:D2:2F:26:6E:CC:91:78:CE:6A:D1:3E:39:47:78:5C:BC
Certificate issuer: /CN=81eed4091383d9ed4056d9f4eff7d2622ddce205
Certificate serial: 0185E3319C17410E7CB333927416EE5F1D61
Authority key identifier: 81:EE:D4:09:13:83:D9:ED:40:56:D9:F4:EF:F7:D2:62:2D:DC:E2:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ge7UCROD2e1AVtn07_fSYi3c4gU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/rSVQG9IvJm7MkXjOatE-OUd4XLw.roa
Signing time: Tue 24 Jan 2023 09:52:37 +0000
ROA not before: Tue 24 Jan 2023 09:52:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1136
IP address blocks: 84.80.0.0/13 maxlen: 13
82.169.128.0/19 maxlen: 19
80.60.0.0/15 maxlen: 15
82.171.64.0/18 maxlen: 18
82.169.160.0/19 maxlen: 19
77.173.0.0/16 maxlen: 16
195.240.0.0/17 maxlen: 17
195.240.0.0/16 maxlen: 16
82.171.0.0/18 maxlen: 18
82.169.96.0/19 maxlen: 19
85.113.224.0/19 maxlen: 19
77.175.0.0/17 maxlen: 17
77.175.0.0/16 maxlen: 16
82.170.0.0/16 maxlen: 16
195.240.192.0/18 maxlen: 18
213.10.0.0/16 maxlen: 16
82.168.0.0/17 maxlen: 17
86.80.0.0/12 maxlen: 12
195.240.128.0/18 maxlen: 18
82.169.192.0/18 maxlen: 18
62.131.0.0/16 maxlen: 16
77.168.0.0/14 maxlen: 14
82.168.0.0/14 maxlen: 14
82.171.128.0/17 maxlen: 17
77.160.0.0/13 maxlen: 13
77.172.0.0/16 maxlen: 16
81.204.0.0/14 maxlen: 14
82.168.192.0/19 maxlen: 19
82.136.192.0/18 maxlen: 18
77.175.128.0/17 maxlen: 17
37.251.0.0/17 maxlen: 17
82.168.128.0/18 maxlen: 18
195.241.0.0/16 maxlen: 16
88.159.0.0/16 maxlen: 16
82.169.64.0/19 maxlen: 19
82.168.224.0/19 maxlen: 19
188.142.0.0/17 maxlen: 17
77.174.0.0/16 maxlen: 16
212.123.128.0/18 maxlen: 18
82.169.0.0/18 maxlen: 18
212.182.128.0/18 maxlen: 18
2a02:a400::/25 maxlen: 25
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e3:31:9c:17:41:0e:7c:b3:33:92:74:16:ee:5f:1d:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81eed4091383d9ed4056d9f4eff7d2622ddce205
Validity
Not Before: Jan 24 09:52:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad25501bd22f266ecc9178ce6ad13e3947785cbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:11:6d:41:2f:33:80:b0:1c:e0:b3:0c:14:e0:
59:a4:9e:97:ac:31:7e:1e:2a:96:da:d8:fb:14:05:
bc:a1:b0:d5:1d:71:bb:b9:64:bc:0b:ea:0d:3a:5e:
58:35:0b:34:13:83:cb:39:bc:d2:52:b1:1b:ac:56:
17:fc:61:00:f5:e4:05:5b:21:0d:7a:e3:00:86:53:
1e:a7:80:26:31:65:9a:50:36:74:87:09:06:7f:5e:
14:43:b8:23:b6:ba:09:54:ca:c3:fc:75:5e:b1:b7:
1b:f5:25:fe:22:97:58:54:46:f1:a2:4c:2d:ce:d5:
8e:6e:e6:2f:3a:35:3b:c6:ec:20:71:3c:44:06:e2:
9d:9f:9a:7a:c0:79:f2:db:25:78:73:61:7c:6a:6a:
23:32:87:3e:85:e4:c3:36:c8:8e:34:90:eb:18:27:
4d:8d:ee:30:05:0b:50:63:94:9a:f0:6e:14:96:10:
81:0a:db:3c:d8:fc:14:5d:89:1a:ca:77:14:4e:86:
e0:c4:e3:c2:ca:f7:b4:fc:79:cc:1a:d1:1b:7f:c7:
90:8b:f5:3e:61:f6:90:47:23:19:99:25:f6:a9:36:
43:57:d0:3d:97:c2:7b:6a:0c:13:78:ef:b3:5a:13:
7b:42:8b:55:19:bf:cd:c8:7f:78:91:2c:5d:71:86:
db:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:25:50:1B:D2:2F:26:6E:CC:91:78:CE:6A:D1:3E:39:47:78:5C:BC
X509v3 Authority Key Identifier:
keyid:81:EE:D4:09:13:83:D9:ED:40:56:D9:F4:EF:F7:D2:62:2D:DC:E2:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ge7UCROD2e1AVtn07_fSYi3c4gU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/rSVQG9IvJm7MkXjOatE-OUd4XLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/ge7UCROD2e1AVtn07_fSYi3c4gU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.251.0.0/17
62.131.0.0/16
77.160.0.0/12
80.60.0.0/15
81.204.0.0/14
82.136.192.0/18
82.168.0.0/14
84.80.0.0/13
85.113.224.0/19
86.80.0.0/12
88.159.0.0/16
188.142.0.0/17
195.240.0.0/15
212.123.128.0/18
212.182.128.0/18
213.10.0.0/16
IPv6:
2a02:a400::/25
Signature Algorithm: sha256WithRSAEncryption
68:88:d0:c3:82:55:4d:1a:80:c0:31:17:56:4d:ec:4d:8e:31:
4e:af:1b:fc:70:5e:4e:68:ee:33:2d:87:4f:b5:73:1a:bd:02:
fb:42:ad:a5:9a:53:27:5f:03:6b:7d:7d:87:47:33:3d:1c:52:
a3:7f:0e:5e:44:39:92:ef:34:f2:af:b3:80:bd:be:6e:c0:0f:
fc:da:25:35:e6:35:40:0e:7c:e1:4a:b8:11:35:6a:3b:b1:4e:
ca:f2:86:89:88:4d:98:7e:69:74:5c:82:2c:ea:02:4e:e9:79:
e3:68:17:1e:2e:a3:da:9e:09:81:fb:85:22:03:8c:10:e7:25:
ba:46:73:b5:b5:71:6b:b5:c2:63:6c:fb:96:e4:8f:84:a8:9c:
40:8b:7e:a3:62:ec:c2:bf:09:f4:11:77:c0:31:da:27:66:cb:
08:ba:57:2a:e7:c2:ab:ac:21:73:58:b0:2b:90:09:28:55:e5:
34:58:14:9f:13:64:d5:dc:3f:9e:b8:0f:a0:32:49:3a:fa:a0:
a6:b8:ec:ee:7a:99:11:02:b5:92:cb:9a:b3:2e:32:6a:f4:0d:
22:8b:00:7e:9f:cc:48:33:53:68:05:4c:7f:e2:31:b8:f0:57:
f8:17:93:46:a2:d3:ec:ec:71:71:9a:d5:75:59:1f:92:2a:26:
5b:d0:88:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:35:50 2024 by rpki-client on console-ams.rpki-client.org